Vulnerabilities > CVE-2019-3734 - Unspecified vulnerability in Dell products

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

dell

NVD

Published: 2019-07-18

Updated: 2020-08-24

Summary

Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain an improper authorization vulnerability in NAS Server quotas configuration. A remote authenticated Unisphere Operator could potentially exploit this vulnerability to edit quota configuration of other users.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell EMC Unity Operating Environment 4.0.0.7329527 Dell EMC Unity Operating Environment 4.0.1.8194551 Dell EMC Unity Operating Environment 4.0.1.8320161 Dell EMC Unity Operating Environment 4.0.1.8404134 Dell EMC Unity Operating Environment 4.0.2.8627717 Dell EMC Unity Operating Environment 4.1.0.8940590 Dell EMC Unity Operating Environment 4.1.0.8959731 Dell EMC Unity Operating Environment 4.1.0.9058043 Dell EMC Unity Operating Environment 4.1.1.9138882 Dell EMC Unity Operating Environment 4.1.2.9257522 Dell EMC Unity Operating Environment 4.2.0.9392909 Dell EMC Unity Operating Environment 4.2.0.9476662 Dell EMC Unity Operating Environment 4.2.1.9535982 Dell EMC Unity Operating Environment 4.2.2.9632250 Dell EMC Unity Operating Environment 4.2.3.9670635 Dell EMC Unity Operating Environment 4.3.1.1525703027 Dell EMC Unity Operating Environment 4.4.0.1534750794 Dell EMC Unity Operating Environment 4.4.1.1539309879 Dell EMC Unityvsa Operating Environment 4.0.0.7329527 Dell EMC Unityvsa Operating Environment 4.0.1.8194551 Dell EMC Unityvsa Operating Environment 4.0.1.8320161 Dell EMC Unityvsa Operating Environment 4.0.1.8404134 Dell EMC Unityvsa Operating Environment 4.0.2.8627717 Dell EMC Unityvsa Operating Environment 4.1.0.8940590 Dell EMC Unityvsa Operating Environment 4.1.0.8959731 Dell EMC Unityvsa Operating Environment 4.1.0.9058043 Dell EMC Unityvsa Operating Environment 4.1.1.9138882 Dell EMC Unityvsa Operating Environment 4.1.2.9257522 Dell EMC Unityvsa Operating Environment 4.2.0.9392909 Dell EMC Unityvsa Operating Environment 4.2.0.9476662 Dell EMC Unityvsa Operating Environment 4.2.1.9535982 Dell EMC Unityvsa Operating Environment 4.2.2.9632250 Dell EMC Unityvsa Operating Environment 4.2.3.9670635 Dell EMC Unityvsa Operating Environment 4.3.0.1522077968 Dell EMC Unityvsa Operating Environment 4.3.1.1525703027 Dell EMC Unityvsa Operating Environment 4.4.0.1534750794 Dell EMC Unityvsa Operating Environment 4.4.1.1539309879	37

References

https://productsecurity-ux.ausmp1z1.pcf.dell.com/support/security/us/en/04/details/535028/DSA-2019-086-Dell-EMC-Unity-Family-Multiple-Vulnerabilities